Issued:: 2025-09-10
Updated:: 2025-09-10

RHSA-2025:15646 - Security Advisory

Overview
Updated Packages

Synopsis

Important: kernel-rt security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for kernel-rt is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

kernel: scsi: lpfc: Use memcpy() for BIOS version (CVE-2025-38332)
kernel: posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del() (CVE-2025-38352)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

Red Hat Enterprise Linux for Real Time for x86_64 - Extended Life Cycle Support 7 x86_64

Fixes

BZ - 2379246 - CVE-2025-38332 kernel: scsi: lpfc: Use memcpy() for BIOS version
BZ - 2382581 - CVE-2025-38352 kernel: posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del()

CVEs

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for Real Time for x86_64 - Extended Life Cycle Support 7

SRPM
kernel-rt-3.10.0-1160.139.1.rt56.1291.el7.src.rpm	SHA-256: fbe8a83ec447ec482eb21c654a646ac624870b4a3dd146de3ec3c0167887a582
x86_64
kernel-rt-3.10.0-1160.139.1.rt56.1291.el7.x86_64.rpm	SHA-256: 42231eeb743691bbbce996f726ba7a340983ff10858c129b45f57fc4c2f2a828
kernel-rt-debug-3.10.0-1160.139.1.rt56.1291.el7.x86_64.rpm	SHA-256: fe6f0f117e74a2a62bef30884d220617a3954246a41bcfc89bae596a4b0e163a
kernel-rt-debug-debuginfo-3.10.0-1160.139.1.rt56.1291.el7.x86_64.rpm	SHA-256: 4d6df4afbcb7d955862ded54e6967121adf557f62c814a9263fd479a480a23bc
kernel-rt-debug-devel-3.10.0-1160.139.1.rt56.1291.el7.x86_64.rpm	SHA-256: ccca20cd08ef3e8c8bae5c082dc6f2c35608337f9f0ee880dfa056811c611e96
kernel-rt-debuginfo-3.10.0-1160.139.1.rt56.1291.el7.x86_64.rpm	SHA-256: 84bd7827d69639473444848f4c4120ad2029b35d1c8497aff5663fb0c10de8eb
kernel-rt-debuginfo-common-x86_64-3.10.0-1160.139.1.rt56.1291.el7.x86_64.rpm	SHA-256: aea576d61054f7b4207bee8afe51140414344e8ac894b112bd9077c38c97af45
kernel-rt-devel-3.10.0-1160.139.1.rt56.1291.el7.x86_64.rpm	SHA-256: 8d762a80e819978ff3329ab7180bce6bb9994b2ce261b427ea4516723c87674a
kernel-rt-doc-3.10.0-1160.139.1.rt56.1291.el7.noarch.rpm	SHA-256: a498838909aeb1cb91a7c7bbf239e488a179a333d83f2b7b60463f81d3b80c91
kernel-rt-trace-3.10.0-1160.139.1.rt56.1291.el7.x86_64.rpm	SHA-256: 085ed04080e07658d740d0b647ab6386a830bedfcb61f09427fdb5eaee42efd8
kernel-rt-trace-debuginfo-3.10.0-1160.139.1.rt56.1291.el7.x86_64.rpm	SHA-256: 78bd342b9a7e1a3678602d07edcff4d2890d488c1ccde8e04dfc30e5979d86b4
kernel-rt-trace-devel-3.10.0-1160.139.1.rt56.1291.el7.x86_64.rpm	SHA-256: c378be0793c7b3557228588946f8ad46929b94b497dbebd967ac24e46c5a320a

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation